cvedb.io
CVE-2016-10673
HIGH · CVSS 8.1
EPSS exploitation probability: 0%
Published 2018-06-04T16:29:01.923 · Last modified 2026-06-17T00:40:08.503

Summary

ipip-coffee queries geolocation information from IP ipip-coffee downloads geolocation resources over HTTP, which leaves it vulnerable to MITM attacks. This could impact the integrity and availability of the data being used to make geolocation decisions by an application.

Affected products

ipip — ipip-coffee

Does this affect you?

Add your gear to cvedb and we'll alert you only when ipip ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.